c3fab76b613c3a48f7779fdd37534290dfa4ddb1d62ba89da37bfdefdecd0a28 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-17_96ce88ac1da48dfa8bcb538cfe656fe5_cryptolocker
Size

36KB
Sample

241017-3hfq9asfne
MD5

96ce88ac1da48dfa8bcb538cfe656fe5
SHA1

b32ca94cd033b5c0bbc31381742a970fef65f67e
SHA256

c3fab76b613c3a48f7779fdd37534290dfa4ddb1d62ba89da37bfdefdecd0a28
SHA512

219e0fdf25dd4fe6f9bb1a4ec4d1f6721aa0f07c401a3e81cedc4c49497e97a65be423a056b9f21ed642e96d18895ceafd96369d40061fd43289a11e337ff77c
SSDEEP

768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnv0Ven:m5nkFNMOtEvwDpjG8h0Qn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-17_96ce88ac1da48dfa8bcb538cfe656fe5_cryptolocker
- Size
  
  36KB
- MD5
  
  96ce88ac1da48dfa8bcb538cfe656fe5
- SHA1
  
  b32ca94cd033b5c0bbc31381742a970fef65f67e
- SHA256
  
  c3fab76b613c3a48f7779fdd37534290dfa4ddb1d62ba89da37bfdefdecd0a28
- SHA512
  
  219e0fdf25dd4fe6f9bb1a4ec4d1f6721aa0f07c401a3e81cedc4c49497e97a65be423a056b9f21ed642e96d18895ceafd96369d40061fd43289a11e337ff77c
- SSDEEP
  
  768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnv0Ven:m5nkFNMOtEvwDpjG8h0Qn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2